Your customers stay invisible. Your visitors, too.

This Privacy Policy explains how Mechanus IQ Ltd. collects, uses, discloses, protects, and retains personal information through the public website at mechanusiq.com, contact forms, inbound business communications, and related security systems.

Paid services, pilots, diagnostics, and data processing for a client organization are also governed by the signed client agreement. If a signed client agreement conflicts with this Privacy Policy for client operational data, the signed agreement controls for that client engagement.

Mechanus IQ is built for Canadian dealership operations. Privacy obligations may include PIPEDA and, where applicable, provincial private-sector privacy laws such as British Columbia PIPA, Alberta PIPA, and Quebec private-sector privacy legislation.

We do not run Google Analytics, Google Tag Manager, Meta Pixel, Hotjar, Clarity, Segment, Mixpanel, Amplitude, PostHog, Plausible, Fathom, session replay, heatmapping, behavioural advertising, fingerprinting, or third-party marketing telemetry on the Site.

We do not set tracking cookies. We do not sell personal information. We do not use Site visitors for advertising profiles. We do not train AI models on Site visitor information or client data.

Mechanus IQ client imports are designed so dealers strip customer personal information at source before any operational export is transmitted to Mechanus IQ. Customer names, addresses, phone numbers, email addresses, social-insurance numbers, and equivalent direct identifiers should not enter Mechanus IQ operational ingestion. Personnel references are designed to use dealer-assigned anonymous personnel codes rather than employee names.

If you contact us, we may collect the information needed to respond: your name, business email, phone number if provided, organization, role, province or region, message content, and any information you choose to include in the communication.

If you request a pilot, diagnostic, briefing, or commercial conversation, we may collect business-contact information, dealership or group information, scheduling information, stated operational priorities, and the history of our communications with you.

When you visit the Site, hosting and security systems may process request metadata such as IP address, user agent, requested URL, timestamp, referrer, device and browser indicators, protocol details, bot-score indicators, and security-event metadata. We use this for site operation, security, abuse prevention, bot-trap enforcement, incident response, and legal preservation where appropriate, not behavioural advertising.

When a dealer becomes a client, Mechanus IQ may process operational dealership data described in the signed client agreement, such as deal logs, funding reports, F and I summaries, service repair-order logs, inventory reports, cancellation records, warranty records, and canonicalized operational versions of those records. The client agreement governs that processing.

We do not sell personal information. We do not disclose personal information for third-party advertising. We do not share client operational data with other clients.

We may disclose limited information to service providers that help us operate the Site, secure the Site, process contact requests, host infrastructure, provide email or scheduling services, maintain records, or support legal and accounting administration. Service providers are permitted to use the information only for the service they provide to Mechanus IQ.

We may disclose information where required or permitted by law, including to courts, regulators, law enforcement, professional advisers, insurers, auditors, or counterparties where necessary for legal claims, security incidents, evidence preservation, contract enforcement, corporate transactions, or compliance obligations.

Client operational data is designed for Canadian residency in AWS ca-central-1, with tenant isolation and no cross-client reuse unless the client expressly agrees in writing.

The public website is served through Cloudflare and other ordinary internet infrastructure. Website request metadata and security metadata may be processed by those providers in the jurisdictions where they operate, subject to contractual, technical, and organizational safeguards. This edge-security metadata is separate from client operational data.

We do not use client data to train, fine-tune, or improve AI models. That prohibition is a business rule and a contractual control for client engagements.

Business-contact records are retained for as long as needed to manage the relationship, respond to the inquiry, maintain ordinary business records, and satisfy legal or governance requirements. Non-client inquiries are normally removed or archived after they are no longer operationally required.

Security logs, bot-trap records, and abuse-prevention records are retained only as long as reasonably necessary for security, investigation, legal preservation, and operational integrity.

Client operational data follows the signed client agreement and the applicable retention schedule. Destruction, export, hold, and preservation obligations are handled under that agreement.

Mechanus IQ uses administrative, technical, and physical safeguards appropriate to the sensitivity of the information. Safeguards may include access controls, least-privilege access, encrypted transport, tenant isolation, audit logging, security headers, Cloudflare edge controls, bot-trap controls, and documented incident-response procedures.

No internet system is perfectly secure. Mechanus IQ limits collection, avoids tracking, separates public website metadata from client operational data, and designs client ingestion to exclude customer personal information at source.

Technical details are summarized at /platform/infrastructure/security.

Subject to applicable law and verification of identity, you may request access to personal information we hold about you, correction of inaccurate information, withdrawal of consent where consent is the basis for processing, deletion where legally available, or information about how your information has been used or disclosed.

Requests should be sent to privacy@mechanusiq.com. We respond within the legally required period, which is normally 30 days unless an extension or different statutory timeline applies.

If you have a concern that we cannot resolve, you may contact the Office of the Privacy Commissioner of Canada or, where applicable, the provincial privacy regulator with jurisdiction over the matter.

We may use business-contact information to respond to a request, continue an active business conversation, or send information directly related to the matter you raised. We do not add website visitors to behavioural advertising audiences.

If we send a commercial electronic message that requires unsubscribe functionality under applicable anti-spam law, we will include an unsubscribe method. You may also ask us to stop non-essential communications by contacting privacy@mechanusiq.com.

The Site is a business-to-business website for dealership operators, lenders, professional advisers, and business reviewers. It is not directed to children, and we do not knowingly collect personal information from children through the Site.

We may update this Privacy Policy by posting a revised version with a new effective date. Changes apply prospectively from the effective date shown unless a different effective date is required by law.

Privacy inquiries and access requests: privacy@mechanusiq.com. Jurisdiction: British Columbia, Canada.

Legal and website-access questions may also be sent through the contact form at /start#contact.